Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
File: HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft (raw, json)
Hash identifier: 69g/CBAtFr5twbqCxlm9s3LTNjG8rANZn2V6er28kVM=
Subject key identifier: FF:76:28:24:BD:AE:B7:17:A7:60:DB:78:39:73:10:AB:8C:04:58:41
Authority key identifier: 1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
Certificate issuer: /CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Certificate serial: 01993D95F42EBF655D762A96172D6DC20FCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
Manifest number: 1688
Signing time: Fri 12 Sep 2025 11:01:01 +0000
Manifest this update: Fri 12 Sep 2025 11:01:01 +0000
Manifest next update: Sat 13 Sep 2025 11:01:01 +0000
Files and hashes: 1: HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl (hash: g637k90aj3ApgJpQd5a/2gZ8yiRiFLlG2XcPxVN/D9s=)
2: HKyKcuG2QNZXVCZbzlsSYd8S3kw.roa (hash: WsComY/xpr7CRKjl1OS19nvkdUYgY57xLKmt+FoyLxs=)
3: NMYTYXjVSSW_zjS5UcL1_MJYMhw.roa (hash: sb8TB9OQXYjgHET+s0jEt1SW4MRtm0F3nj4wUyz73j8=)
4: OL6AoyvltIWrfared4b30q9zkxI.roa (hash: BCZJFaW2H8wcaghHXjKzyZLLD5xoj/h4op/UrSZpM4s=)
5: cdvkytGTuhzfI_n3jlQrgir1LVg.roa (hash: bDSSCJ1WplO8Ib0UIaI2qA5CZAt1v6VMlLCWW3FIaSk=)
6: jLAxUa8xvZ_xtGFLN3MZzH02ngY.roa (hash: 2KcY9b/rNpgICtwXDDn50o8m8wTGL/9zVFvIOuzYcZI=)
7: jwz6PrQFhFvB8Ouuwat3y2nONuA.roa (hash: TxTry85XsPky+PSHHeTZJCkAX90hbYBwkf2e2x38QSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Sep 2025 08:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:3d:95:f4:2e:bf:65:5d:76:2a:96:17:2d:6d:c2:0f:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Validity
Not Before: Sep 12 11:01:01 2025 GMT
Not After : Sep 13 11:01:01 2025 GMT
Subject: CN=ff762824bdaeb717a760db78397310ab8c045841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:3c:11:fd:e5:86:da:fb:d1:2b:72:b8:d8:99:
a0:3d:f8:ab:d9:3d:2a:a8:25:3b:af:cb:81:24:47:
c8:13:b0:cb:22:8d:34:f3:c3:f4:63:42:40:df:8a:
66:29:73:6e:2c:ff:1c:bc:df:eb:22:1c:4a:38:0e:
59:07:a9:db:56:ea:fc:00:df:df:59:3b:a5:bf:98:
44:d6:8b:a1:98:8d:f6:9e:42:87:96:cc:2b:1c:41:
b2:c0:73:04:16:01:ca:f3:11:7f:b7:82:2c:a7:90:
87:1d:7c:64:14:e2:a4:41:87:3a:73:a9:d6:0d:68:
9d:70:db:26:f0:5e:db:a9:49:56:af:a2:1a:cb:c3:
5d:31:11:3c:74:91:8d:ef:ac:37:dc:0d:b9:96:93:
a2:5f:7c:c3:e6:2c:fc:41:f9:98:d5:c9:ee:11:86:
78:96:fa:fb:01:d4:2a:00:5c:07:71:7d:51:0b:b5:
a4:b7:14:ae:b9:da:5f:16:c8:a2:1d:1e:88:98:0d:
9f:2d:5c:af:fd:fa:d4:bf:37:83:71:bf:7e:03:db:
0f:07:d8:60:23:90:f8:1f:a7:c5:0f:78:a5:4a:ed:
61:c1:cf:5b:45:e6:e8:4f:87:01:79:b3:43:61:b5:
cb:c4:74:f8:6e:87:bb:0d:f1:a9:ce:9a:a7:4a:71:
fd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:76:28:24:BD:AE:B7:17:A7:60:DB:78:39:73:10:AB:8C:04:58:41
X509v3 Authority Key Identifier:
keyid:1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:3b:e2:4a:03:97:65:1a:4b:8c:57:4d:4b:5d:6f:5c:7c:44:
6f:a9:81:d8:9a:28:b9:7f:9e:5b:47:c2:26:e8:dd:25:26:53:
a8:b6:92:8e:47:b5:49:0b:89:87:00:1f:8f:a9:6a:c3:39:ed:
ba:1f:7c:2d:0f:b0:eb:db:56:11:18:fc:af:65:3f:44:74:ca:
7c:0f:59:e3:2f:44:06:14:82:06:7d:27:5b:05:cd:f6:d6:8f:
17:cb:23:dd:e9:92:a4:14:35:14:72:ba:fd:8c:57:e7:4e:2f:
15:99:93:e2:27:f0:c2:3e:94:d0:ba:3a:5c:9d:0e:ed:24:5d:
22:f0:64:4f:62:56:be:d4:62:2a:e8:88:44:df:00:11:4b:cc:
39:b3:a0:87:e9:b6:15:3e:74:f0:bf:9b:72:48:e2:8e:80:33:
31:e9:cb:3b:32:b2:2c:8d:bb:d3:1a:99:31:d7:20:7d:cd:1f:
ec:b4:ec:42:da:37:d8:2d:71:b5:df:a1:05:4b:90:ca:f7:b8:
e1:a1:58:26:00:b1:2c:9f:8d:b4:c9:68:a4:fc:cb:6c:eb:1c:
3d:be:b4:15:50:72:84:9f:75:78:e1:3d:d6:b0:7f:a6:93:f1:
05:2b:41:b7:0a:bd:cd:a8:69:48:8c:99:e1:28:0a:4b:ed:9f:
eb:f7:8b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 12 17:37:54 2025 by rpki-client